| The use of flexible-open standards which can be exposed functionality to clients make Web services excellent mechanism through Web Services. It makes more and more companies and organizations start to found and deploy Web Services. However the security factors of Web Services have been affected the popularization and generalization of Web Services. In this paper threats and challenges of the current Web Services are introduced. And the authentication, authorization, access control, WS-Security, XML encryption, XML signature and SOAP security communication technology are researched and summarized pertinently. Then a security systematic structure of Web Services is propesed. Then a security model of Web Services is proposed based on the structure. Following, the application instance system are designed and realized based on security model of Web Services. In the end the security of the model is confirmed.According to the application of security of Web Services in the system of the application instance the security system in this web structure and function mechanism are explained in this thesis. Then XML signature and encryption to the same according to the access control and the authentication, three safety demands of Web Sercices: validation, integrity, and confidentiality are accomplished.Finally, the application of the security of Web Services is simply analysed and perspected. |